Lucene search
UbuntuUSN-2790-1HistoryNov 04, 2015 - 12:00 a.m.
NSPR vulnerability
2015-11-0400:00:00
ubuntu.com
47
9.4 High
AI Score
Confidence
High
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.057 Low
EPSS
Percentile
93.3%
Releases
- Ubuntu 15.10
- Ubuntu 15.04
- Ubuntu 14.04 ESM
- Ubuntu 12.04
Packages
- nspr - NetScape Portable Runtime Library
Details
Ryan Sleevi discovered that NSPR incorrectly handled memory allocation. A
remote attacker could use this issue to cause NSPR to crash, resulting in a
denial of service, or possibly execute arbitrary code.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 15.10 | noarch | libnspr4 | < 2:4.10.10-0ubuntu0.15.10.1 | UNKNOWN |
| Ubuntu | 15.10 | noarch | libnspr4-0d | < 2:4.10.10-0ubuntu0.15.10.1 | UNKNOWN |
| Ubuntu | 15.10 | noarch | libnspr4-dbg | < 2:4.10.10-0ubuntu0.15.10.1 | UNKNOWN |
| Ubuntu | 15.10 | noarch | libnspr4-dbgsym | < 2:4.10.10-0ubuntu0.15.10.1 | UNKNOWN |
| Ubuntu | 15.10 | noarch | libnspr4-dev | < 2:4.10.10-0ubuntu0.15.10.1 | UNKNOWN |
| Ubuntu | 15.04 | noarch | libnspr4 | < 2:4.10.10-0ubuntu0.15.04.1 | UNKNOWN |
| Ubuntu | 15.04 | noarch | libnspr4-0d | < 2:4.10.10-0ubuntu0.15.04.1 | UNKNOWN |
| Ubuntu | 15.04 | noarch | libnspr4-dbg | < 2:4.10.10-0ubuntu0.15.04.1 | UNKNOWN |
| Ubuntu | 15.04 | noarch | libnspr4-dbgsym | < 2:4.10.10-0ubuntu0.15.04.1 | UNKNOWN |
| Ubuntu | 15.04 | noarch | libnspr4-dev | < 2:4.10.10-0ubuntu0.15.04.1 | UNKNOWN |
References
Related
openvas
openvas
Ubuntu Update for nspr USN-2790-1
2015-11-05 00:00:00
Debian Security Advisory DSA 3406-1 (nspr - security update)
2015-11-25 00:00:00
Debian Security Advisory DSA 3406-1 (nspr - security update)
2015-11-25 00:00:00
osv
osv
nspr - security update
2015-11-19 00:00:00
cve
cve
CVE-2015-7183
2015-11-05 05:59:00
prion
prion
Integer overflow
2015-11-05 05:59:00
nessus
nessus
Ubuntu 14.04 LTS : NSPR vulnerability (USN-2790-1)
2015-11-05 00:00:00
Debian DSA-3406-1 : nspr - security update
2015-11-30 00:00:00
Debian DLA-344-1 : nspr security update
2015-11-20 00:00:00
archlinux
archlinux
nspr: arbitrary code execution
2015-11-06 00:00:00
firefox: multiple issues
2015-11-04 00:00:00
debiancve
debiancve
CVE-2015-7183
2015-11-05 05:59:00
debian
debian
[SECURITY] [DSA 3406-1] nspr security update
2015-11-25 21:51:42
[SECURITY] [DLA 344-1] nspr security update
2015-11-19 21:18:36
[SECURITY] [DSA 3393-1] iceweasel security update
2015-11-04 18:41:55
ubuntucve
ubuntucve
CVE-2015-7183
2015-11-04 00:00:00
ibm
ibm
Security Bulletin: IBM Security Access Manager for Web is affected by Network Security Services (NSS) vulnerabilities (CVE-2015-7181, CVE-2015-7182, CVE-2015-7183)
2018-06-16 21:38:59
redhat
redhat
(RHSA-2015:2068) Critical: nss, nss-util, and nspr security update
2015-11-18 00:00:00
(RHSA-2015:1980) Critical: nss and nspr security update
2015-11-04 00:00:00
(RHSA-2015:1981) Critical: nss, nss-util, and nspr security update
2015-11-04 00:00:00
veracode
veracode
Arbitrary Code Execution
2019-05-02 05:43:34
Arbitrary Code Execution
2019-05-02 05:43:35
slackware
slackware
[slackware-security] mozilla-nss
2015-11-06 17:08:58
oraclelinux
oraclelinux
nss and nspr security update
2015-11-04 00:00:00
nss, nss-util, and nspr security update
2015-11-04 00:00:00
f5
f5
mozilla
mozilla
NSS and NSPR memory corruption issues — Mozilla
2015-11-03 00:00:00
centos
centos
nspr, nss security update
2015-11-04 15:57:04
nspr, nss security update
2015-11-04 11:34:51
amazon
amazon
Critical: nspr, nss-util, nss, jss
2015-11-05 01:58:00
symantec
symantec
SA119 : Multiple NSS Vulnerabilities
2016-03-22 08:00:00
kaspersky
kaspersky
KLA10744 Multiple vulnerabilities in Oracle VM VirtualBox
2016-02-21 00:00:00
KLA10689 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR
2015-11-03 00:00:00
mageia
mageia
Updated firefox, nspr, nss packages fix security vulnerability
2015-11-04 21:03:05
chrome
chrome
Stable Channel Update
2015-10-13 00:00:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2015-12-01 00:00:00
Firefox vulnerabilities
2015-11-04 00:00:00
suse
suse
Security update for MozillaFirefox, mozilla-nspr, mozilla-nss (important)
2015-11-06 17:11:17
Security update for MozillaFirefox, mozilla-nspr, mozilla-nss (important)
2015-11-12 20:10:40
Security update for MozillaFirefox, mozilla-nspr, mozilla-nss (important)
2015-11-12 17:11:49
freebsd
freebsd
mozilla -- multiple vulnerabilities
2015-11-03 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2015-12-30 00:00:00
Mozilla Products: Multiple vulnerabilities
2016-05-31 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - April 2016
2016-04-19 00:00:00
Oracle Critical Patch Update - July 2016
2016-07-19 00:00:00
Oracle Critical Patch Update - January 2016
2016-01-19 00:00:00
9.4 High
AI Score
Confidence
High
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.057 Low
EPSS
Percentile
93.3%
Related for USN-2790-1